News & Analysis as of

Data Security Risk Management Personal Data

A&O Shearman

Hong Kong Privacy Commissioner releases First AI-focused Personal Data Protection Framework in APAC

A&O Shearman on

As Artificial Intelligence (AI) continues to evolve and integrates into business processes, the Office of the Privacy Commissioner for Personal Data (PCPD) released its Artificial Intelligence: Model Personal Data Protection...more

The Volkov Law Group

President Biden Issues Executive Order Concerning Bulk Data, With Parallels to Current Sanctions Regulations

The Volkov Law Group on

On February 28, 2024, President Biden issued a new Executive Order in order to better secure the private data of U.S. citizens from being exploited by foreign adversaries of the United States.  By issuing his Executive Order...more

Littler

Developing a Global Data Protection Framework for Artificial Intelligence in the Workplace

Littler on

As employment-related artificial intelligence (“AI”) tools proliferate, multinational employers feel increasing pressure to deploy AI across their global offices.  These tools can provide great value and efficiency across the...more

Health Care Compliance Association (HCCA)

Privacy Briefs: January 2024

New York has released proposed cybersecurity regulations for hospitals. The regulations, which were published in The State Register on Dec. 6 and will undergo a 60-day public comment period ending on Feb. 5, are designed to...more

White & Case LLP

Cybersecurity Developments and Legal Issues

White & Case LLP on

For most large companies, a frictionless flow of information and the ability to transfer customer data, employee files, financial records and other information around the world quickly and cost-effectively is a critical...more

Dorsey & Whitney LLP

Hong Kong PCPD Releases Recommended Data Security Measures

Dorsey & Whitney LLP on

​​​​​​​On August 30, 2022, the Hong Kong Privacy Commissioner for Personal Data (the “PCPD”) released a guidance note (the “Guidance Note”) on data security measures for information and communications technology to provide...more

K&L Gates LLP

Litigation Minute: Mitigating Class Action Risks Posed by Collecting and Storing Sensitive Data

K&L Gates LLP on

WHAT YOU NEED TO KNOW IN A MINUTE OR LESS - The collection and storage of sensitive data can not only invite the attention of government agencies, but also that of putative class action plaintiffs. Government inquiries,...more

American Conference Institute (ACI)

[Event] 2nd National Forum on Team Telecom - April 25th, Washington, DC

Gain critical strategies for managing reviews in the new Team Telecom environment. The American Conference Institute’s 2nd National Team Telecom Conference will take place in Washington D.C. on April 25, 2022, one day...more

Lathrop GPM

2022 Legal Guide to Privacy and Data Security

Lathrop GPM on

Facial recognition technology, drones the size of a butterfly, secure microchips replacing magnetic stripes on credit cards, sensors the size of a grain of sand swallowed by patients that transmit data directly to the...more

McDermott Will & Emery

[Webinar] PIPL - A Review of China’s New Privacy Law and Insights Into Achieving Compliance and Managing Risks - November 18th,...

McDermott Will & Emery on

China recently enacted its Personal Information Privacy Law (PIPL), which came into effect November 1, 2021. PIPL has global reach and broadly regulates entities of all industries that process the personal data of Chinese...more

Society of Corporate Compliance and Ethics...

[Webinar] Effective Use of Privacy Impact Assessments - September 13th, 12:00 pm - 1:30 pm CDT

Learning Objectives: - What is a PIA and a DPIA? - Who should instigate assessments? - How and when to use assessments? - The relationship between assessments and privacy by design, and legal grounds for processing...more

Robinson+Cole Data Privacy + Security Insider

U.S. Customs and Border Protection Failed to Adequately Secure and Protect Traveler Data

This week, the Department of Homeland Security’s inspector general said in an oversight report that U.S. Customs and Border Protection (CBP) officials have failed to use adequate cybersecurity measures and safeguards to...more

Jones Day

Jones Day Global Privacy & Cybersecurity Update | Vol. 27

Jones Day on

United States - Regulatory—Policy, Best Practices, and Standard - NIST Unveils Draft Guidance to Protect Critical Infrastructure - On October 22, 2020, the National Institute of Standards and Technology ("NIST")...more

Hogan Lovells

Hogan Lovells Asia Pacific Data Protection and Cyber Security Guide 2020

Hogan Lovells on

It is no overstatement to say that 2019 saw a torrid pace of development of Asia-Pacific region data protection and cybersecurity laws. Such was the rate and complexity of change that it is not straightforward to distil...more

Carlton Fields

Are You in Compliance With New York’s Newest Requirement to Develop, Maintain, and Implement Reasonable Safeguards to Protect New...

Carlton Fields on

The new data security requirements provision of New York’s Stop Hacks and Improve Electronic Data Security (SHIELD) Act went into full force as of March 21, 2020, and all people and businesses, regardless of the state in...more

Sands Anderson PC

New York’s New Data Security Requirements

Sands Anderson PC on

In the fall of last year, we wrote about the passage of the SHIELD Act (the Act) in New York, which expanded aspects of the state’s breach notification requirements (Breach Requirements) and created a statutory obligation to...more

McDermott Will & Emery

Privacy and Data Security: 2020 Considerations for the Insurance Industry

To stay ahead of the new privacy and data security requirements, such as CCPA and recent data security state laws, insurers need to take steps now to navigate the increasingly complex regulatory landscape. This article...more

Epstein Becker & Green

The New York State “Stop Hacks and Improve Electronic Data Security Act” (SHIELD Act) Becomes Effective March 21, 2020: Is Your...

Time is running out. The effective date of New York’s cybersecurity law mandating that organizations implement an information security program to protect “private information” of New York State residents, including employee...more

Mitratech Holdings, Inc

In Data Privacy, How Smart Is Your Data?

Over the last few years, data privacy has been brought in to the public focus more than ever before. What information is being collected about you, how is it being used, and who has the ability to access it. ...more

Stinson - Government Contracting Matters

NIST Privacy Framework Version 1.0 Issued

On January 16, 2020, the National Institute of Standards and Technology (NIST) issued its NIST Privacy Framework Version 1.0 (Privacy Framework). The Privacy Framework follows the same type of structure as the NIST Framework...more

Robinson+Cole Data Privacy + Security Insider

NIST Releases Privacy Framework: A Tool for Improving Privacy Through Enterprise Risk Management

The National Institute of Standards and Technology (NIST) released its first privacy framework tool (the “Privacy Framework”) on January 16, 2020. In the Executive Summary...more

Polsinelli

States’ Data Breach Notification Statute Amendments in Quarters 3-4 of 2019

Polsinelli on

From late June 2019 through mid-October 2019, a handful of states amended their data breach notification statutes. Specifically, six states amended their states to (1) require notice to the State Attorney General, (2) broaden...more

Robinson & Cole LLP

Data Privacy + Cybersecurity Insider - January 2020 #3

Robinson & Cole LLP on

FBI Warns of Retaliatory Cyber-Attack from Iran - The Federal Bureau of Investigation (FBI) is warning of a heightened likelihood of Iranian cyber-attacks following the escalation of tension between the U.S. and Iran. This...more

Shook, Hardy & Bacon L.L.P.

Privacy and Data Security Alert | December 2019

SDNY Rejects Standing under “Increased Risk” Theory Where Data Not Targeted or Stolen - The Southern District of New York rejected a settlement that would have resolved a class action based on the unauthorized (and...more

Orrick, Herrington & Sutcliffe LLP

Russia Significantly Increases Fines for Violations of Data Localization Requirement

Under Russian Data Protection Law, when collecting personal data, data operators (controllers) must ensure that recording, systematization, accumulation, storage, updating and extraction of personal data relating to Russian...more

44 Results
 / 
View per page
Page: of 2

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide